[Emerging-updates] Daily Ruleset Update Summary 10/22/2013

Francis Trudeau ftrudeau at emergingthreats.net
Tue Oct 22 15:34:00 HADT 2013


 [***] Summary [***]

6 pro rules, 3 three open rules.  "81a338" content injection, Kazy, Kegotip.

 [+++]          Added rules:          [+++]

Pro:
  2807137 - ETPRO TROJAN Worm.Win32.VBNA.b Checkin (trojan.rules)
  2807138 - ETPRO TROJAN Trojan-PWS.OnlineGames CnC traffic (TCP)
(trojan.rules)
  2807139 - ETPRO TROJAN Trojan-PWS.OnlineGames ICMP Echo Request 1
(trojan.rules)
  2807140 - ETPRO TROJAN Trojan-PWS.OnlineGames ICMP Echo Request 2
(trojan.rules)
  2807141 - ETPRO TROJAN Win32/Gamarue.B Checkin (trojan.rules)
  2807142 - ETPRO TROJAN Variant.Kazy.236558 Checkin (trojan.rules)
Open:
  2017625 - ET CURRENT_EVENTS 81a338 Hacked Site Response (Outbound)
(current_events.rules)
  2017626 - ET CURRENT_EVENTS 81a338 Hacked Site Response (Inbound)
(current_events.rules)
  2017627 - ET TROJAN W32/Kegotip CnC Beacon (trojan.rules)

 [///]     Modified active rules:     [///]

  2012612 - ET TROJAN Hiloti Style GET to PHP with invalid terse MSIE
headers (trojan.rules)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.emergingthreats.net/pipermail/emerging-updates/attachments/20131022/22d11067/attachment.html>


More information about the Emerging-updates mailing list